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CLAIMS 

1 . A method of administering user access to application programs on a 
computer system, comprising providing a user database, a database of tasks and a user- 
specific list of allowed tasks, comprising allowed application programs, configuring the 
list of allowed tasks on the basis of the user database and the database of tasks, detecting a 
5 command to execute a task, and preventing execution of tasks that are not on the list of 
allowed tasks. 

|# 2. A method according to claim 1 , wherein the list of allowed tasks is 

p configured at least once every time a user has entered a request to log on to the computer 

ll system. 

^^10 3 . A method according to claim 2, wherein the database of tasks 

1^ comprises information specifying time intervals in which a task may be executed, 

W comprising configuring the list of allowed tasks on the basis of this information and the 

p time indicated by a system clock. 

fn/ 4. A method according to claim 1, wherein the database of tasks 

P 1 5 comprises information linking tasks to other tasks that can invoke the tasks during 
Q execution of an application program. 

5. A method according to claim 1, wherein, in a simulation mode, at 
least one task that is not on the list of allowed tasks is allowed to execute, and tasks started 
during execution are registered. 

6. A method according to claim 2, wherein the computer system is a 
distributed computer system comprising a plurality of computer terminals coimected to a 
network, and wherein the database of tasks comprises location-dependent information, the 
method comprising registering the terminal on which the user has entered the request and 
configuring the list of allowed tasks on the basis of the location-dependent information 
and the registered terminal. 

7. A method according to claim 1 , wherein a plurality of user groups 
are defined, a group membership list is provided with the user database for each user, links 
are provided between tiie tasks in the database of tasks and the groups, and the links and 
the group membership list are used to configure the list of allowed tasks. 

8. Method according to claim 7, wherein a plurality of user fimctions 
are defined, a user fimction list is provided with the user database for each user, links are 
provided between the tasks in the database of tasks and the user fimctions, and the links 
and the user function list are used to configure the list of allowed tasks. 
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9. A method according to claim 1, wherein prevention of the execution 
of an application program or task is registered, and wherein a notification of the 
prevention is sent to a system administrator. 

10. A method according to claim 1, wherein one or more tasks of which 
5 the execution should never be prevented are defined in the database of tasks, and wherein 

execution of such a task is also not prevented if it is not on the list of allowed tasks. 

1 1 . Method according to claim 5, wherein one or more tasks of which 
the execution should always be prevented are defined in the database of tasks, and wherein 

|,^, execution of such a task is prevented in the simulation mode. 

do 12. A computer system comprising means for generating a user-specific 

0 list of allowed tasks, comprising allowed application programs, means for detecting a 

tfi command to execute a task, means for preventing execution of tasks that are not on the list 

of allowed tasks, a user database and a database of tasks, and means for configuring the 
j j list of allowed tasks on the basis of the user database and the database of tasks. 

15 13. A computer system according to claim 12, programmed to configure 

l^ij the list of allowed tasks at least once every time a user has entered a request to log on to 

ll' the computer system. 

0. 14. A computer system according to claim 12, wherein the database of 

W tasks comprises information linking tasks to other tasks that can invoke the tasks during 

2 0 execution of an application program. 

15. Acomputer system according to claim 12, capable of being run in a 
simulation mode in which mode the computer system is programmed to allow at least one 
task that is not on the list of allowed task to execute and to register tasks started during 
execution. 

25 16. A computer system according to claim 12, comprising means for 

defining a plurality of user groups, and a group membership list, stored with the user 
database, for each user, wherein information linking tasks to the groups is comprised in 
the database of tasks for each task, the computer system being programmed to use the 
links and the group membership list to configure the list of allowed tasks. 

30 17. A computer program comprising one or more routines for 

generating a user-specific list of allowed tasks, comprising allowed application programs, 
one or more routines for reading a user database and a database of tasks, and one or more 
routines for configuring the list of allowed tasks on the basis of the user database and the 
database of tasks, one or more routines for detecting a command to execute a task, and one 

35 or more routines for preventing execution of tasks that are not on the list of allowed tasks. 
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18. A computer program according to claim 17, which, when run, 
configures the list of allowed tasks at least once every time a user has entered a request to 
log on to the computer system. 

19. A computer program according to claim 17, capable of being run in 
5 a simulation mode in which mode at least one task that is not on the list of allowed tasks is 

allowed to execute and tasks started during execution are registered. 

20. A computer program according to claim 1 7, comprising one or more 
routines for defining a plurality of user groups, one or more routines for reading a group 

|«f= membership list, stored with the user database, for each user, and one or more routines for 
13 10 retrieving information linking tasks to the groups, comprised in the database of tasks for 
f^t each task, which program, when run, is capable of using the links and the group 

!^ m^bership list to configure the list of allowed tasks. 



